[pkg-cryptsetup-devel] Bug#502772: Bug#502772: gnome autologin user should depend on boot passsword
Jonas Meurer
jonas at freesources.org
Wed Mar 16 13:29:32 UTC 2011
Hey Josh,
On 16/03/2011 Josh Triplett wrote:
> On Wed, Mar 16, 2011 at 10:32:47AM +0100, Harald Jenny wrote:
> > On Tue, Mar 15, 2011 at 10:31:33AM -0700, Josh Triplett wrote:
> > > Package: cryptsetup
> > > Version: 2:1.0.6+20090405.svn49-1
> > > Followup-For: Bug #502772
> > >
> > > reopen 502772
> > > retitle 502772 Associate usernames with passphrases; provide username associated with passphrase used
> > > thanks
> > >
> > > This bug report seems to have gotten closed based on an incorrect
> > > interpretation of the original report. Reopening, retitling, and
> > > re-requesting.
> > >
> > > The report makes the reasonable request that since an encrypted
> > > filesystem can have multiple passphrases associated with it, those
> > > passphrases could have associated usernames. Cryptsetup could then use
> > > the passphrase provided to look up the associated username, and provide
> > > that username to later phases of the boot process somehow, such as to
> > > GDM to allow it to select that username for autologin. Thus, the user
> > > would enter their passphrase to decrypt the disk, and not need to
> > > subsequently log in with a username and password.
> > >
> > > That seems like a reasonable request, and it should not impact system
> > > security in any way.
> > >
> > > - Josh Triplett
> >
> > you may also want to check libpam-mount if this suits your needs (although it
> > requires some config on the machine).
>
> That only applies in the case of an encrypted user home directory, not
> an encrypted root partition.
as already written, tokentube (sf.net/project/tokentube) might be, what
you're looking for.
for sure, I meant to rephrase this bugreport into an RFP (request for
packaging), not ITP (intend to package). See the page about work-needing
and prospective packages at http://www.debian.org/devel/wnpp/ for more
information.
greetings,
jonas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-cryptsetup-devel/attachments/20110316/3a8ea69e/attachment-0001.pgp>
More information about the pkg-cryptsetup-devel
mailing list